Past Meetings of the Dayton Chapter of InfraGard 

May 19th, 2010 – Intellectual Property Theft

Robert Behlen, U.S. Attorney for the Southern District of Ohio, spoke on Economic Espionage, Theft of Trade Secrets, and Theft of Intellectual Property.  Mr. Behlen has worked with the office since November, 1980.  He currently serves as Executive Assistant U.S. Attorney and Chief of the National Security Section.  His responsibilities also include supervision of the Administrative Division and the District's training program.

In 2006, he served on the Counsel to the Director Staff at the Executive Office for United States Attorneys in Washington, D.C., working on terrorism and other national security issues.  He previously served the Southern District of Ohio for three years as Senior Litigation Counsel.

He is a graduate of the University of Cincinnati College of Law and the University of Cincinnati McMiken College of Arts and Sciences.  He also holds a Master's Degree in Public Affairs from Indiana University.  Robert served as President of the John W. Peck Cincinnati-Northern KY Chapter of Federal Bar Association from  1998- thru 1999 and served on the organizations's National Council.  He teaches International Criminal Law and National Security Law at the University of Cincinnati College of Law as a member of the adjunct faculty.

March 10, 2010 - Global State of Information Security Survey 2010 Debrief

John Maynor, Price Waterhouse Coopers, provided key points from the 7th annual Global State of Information Security Survey 2010, a worldwide study by PricewaterhouseCoopers, CIO magazine and CSO magazine. The study, which is the largest of its kind, represents responses of 7,200 IT, security and business executives in more than 130 countries across all industries. Many organizations have found this survey useful in benchmarking their information security progress against their industry peers and global counterparts.

Two findings, in particular, stand out this year. On the one hand, there’s compelling evidence that, in some respects, the security function appears to be under protection as if the efforts of technology and security executives to better align security with the business were, in fact, beginning to show results.

On the other hand, the economic downturn has clearly raised the bar on security. In addition to helping the business mitigate risks associated with factors such as globalization, outsourcing and third-party compliance with the company’s policies, the information security function is now also charged with new challenges and for some companies, with more urgency than ever before. The Information Security function and its leaders are now also tasked with helping companies address an acute set of crisis-related risks and opportunities such as those associated with new business models, M&A transactions, successive waves of layoffs, cost-cutting drives in other parts of the enterprise, and major shifts in a key competitor?s strategy.

John Maynor is a Manager with PricewaterhouseCoopers' System and Process Assurance group. He has 10 years professional experience in private industry and with PricewaterhouseCoopers. John has developed governance practices within diverse industries to meet today's regulatory requirements including HIPAA and Sarbanes-Oxley. Mr. Maynor currently performs Disaster Recovery Assessments for Fortune 100/500 Clients. Prior to joining PricewaterhouseCoopers, John developed and maintained Information Security programs for Fortune 1000 companies, including policy and awareness program development. Since joining PricewaterhouseCoopers, John has helped multiple clients build their Information Security programs.

September 23, 2009 - FBI On-Scene Commander for Iraq and Afghanistan

The September presenter is the Cinci FBI ASAC Kevin Cornelius.  Special Agent Cornelius recently spent a seven month tour as the FBI On-Scene Commander for Iraq and Afghanistan.  He just returned to his "normal duties" in Cincinnati.   SA Cornelius will discuss how the FBI is involved in the different aspects of the two campaigns, as well as how their efforts there produce success here on the home front.  This is a unique opportunity to learn what is actually occuring overseas and offers to be a very interesting presentation.

SA Cornelius is the Assistant Special Agent in Charge under SAC (Supervisory Special Agent ) Keith Bennett in Cincinnati.  Cincinnati is the Division HQ for the Dayton and Columbus Resident Agencies, along with Athens, Cambridge, and Portsmouth (roughly, the entire southern half of Ohio).

July 15, 2009 - FBI Evidence Response Team 

Supervisory Special Agent Ken Wall will present an updated look inside the FBI Evidence Response Team (ERT). The recovery of physical evidence during investigations of crime scenes and search warrant execution is one of the most important undertakings of contemporary law enforcement.  This has often been dramatized on television shows such as CSI.  SA Wall will talk about how the FBI conducts crime scene investigations. He will demonstrate tools of the trade and will go into some of the major cases his team has been involved in, including Oklahoma City, 9/11 - The plane crash in Shankesville PA., World Trade Center, and Oklahoma City.  Agent Wall will also discuss some cases with a more local flavor.

Today, with the expanded capabilities of forensic science, more attention must be directed in the field to the proper location, recovery and documentation of physical evidence.  Ultimately, this evidence will be examined by experts in FBI laboratories and used in the furtherance of justice.  Experience has revealed that the utilization of the team concept for field evidence recovery can be a great advantage in ensuring that evidence is recovered in an effective and efficient manner. ERTs are especially valuable when large and complex crime scenes are encountered.

May 20th, 2009 - Corporate Controls on Information Theft and Phishing

Organizational Compliance: Compliance means different things to different companies and industries. For example companies are faced with complying with government regulations (i.e. SOX, PII), industry specific regulations (i.e. SEC, HIPAA) in addition companies must comply with their own internal compliance initiatives. Many companies have begun to see the evolution of their compliance environments through reduction in costs, and improvements in quality. However, these basic advances typically result from lessons learned, not from fundamental improvements in control quality and efficiency. In order for companies to evolve their compliance environments into cost-effective, sustainable programs, companies must enable technology, to achieve sustainable compliance processes and controls.

Information Theft & Phishing: With the advent of the extended enterprise, the concept of the security perimeter is changing. When unauthorized access can be obtained remotely, sensitive information about employees, customers, business partners, patients, passengers, etc. can be stolen or abused. One of the primary attack vectors to accomplish information theft involves ?Phishing?. The presentation will provide an overview of Phishing, case studies and the primary controls organizations can implement to protect themselves. Each conference participant will also receive a copy of the 2009 Deloitte Global Security Review and Overview.

April 1, 2009 -  " Cyberthreats: Emerging Fault Lines of the Nation-State"

University of Dayton Professor Susan Brenner spoke about her new book, "Cyberthreats: Emerging Fault Lines of the Nation-State."   Susan's book explains how, and why, the use of cyberspace as a threat vector which can result in the blurring of the traditional categories of threats to social order. The traditional categories are internal threats (crime and terrorism) and external threats (warfare). Most nation-states, and particularly the United States, divide response authority according to the nature of the threats. Therefore, law enforcement deals with internal threats and the military deals with the external threats. Cyberspace, of course, makes physical boundaries irrelevant, so what were once purely internal threats (crime and terrorism) can originate outside the boundaries of a particular country. This creates challenges for that country's attribution (What kind of threat is it? Who's it coming from?) and their response (crime or war) systems. The last part of the book speculates as to how we can alter our current approach so that nation-states can more effectively respond to cyber threats.

Professor Brenner is a NCR Distinguished Professor of Law and Technology at the University of Dayton School of Law.  In addition to addressing InfraGard, she has spoken at numerous events, including the First International Conference on Legal, Security and Privacy issues in Hamburg, the Montreux Secure IT Conference in Switzerland, Interpol's Fourth and Fifth International Conferences on Cybercrimes, the Middle East IT Security Conference, the American Bar Association's National Cybercrime Conference, the Yale Law School Conference on Cybercrime and the Symposium on Internet and Privacy held at Stanford Law School. She was a member of the European Union's CTOSE project on digital evidence and served on two Department of Justice digital evidence initiatives. Professor Brenner chaired the International Efforts Working Group for the American Bar Association's Privacy and Computer Crime Committee and chaired a Working Group in an American Bar Association project that developed the ITU Toolkit for Cybercrime Legislation for the United Nations International Telecommunications Union. She is a cybercrime consultant for Global CyberRisk, LLC. Professor Brenner is a member of the American Academy of Forensic Sciences.  In 2007, Oxford University Press published her book: Law in an Era of Smart Technology. 

To view Ms. Brenner's presentation click here

January 21, 2009 - Inside the Israeli Security Agency

FBI Special Agent Todd Warner will discusses a 2008 diplomatic visit to Israel for an look inside the Israeli Security Agency, the Shinbet.  The presentation details the inner workings of Shinbet and is illustrated with on-the-ground photos, visit details and personal stories.  This presentation has been a scene setter for intelligence briefings regarding the very recent acceleration of military actions in the Gaza Strip.  SA Warner also answer questions regarding a temporary assignment to Guantanamo Bay, Cuba in 2005.  .

Todd Warner is a Special Agent with the Federal Bureau of Investigation working under our former InfraGard Coordinator, SSA Ken Wall, in the Cincinnati District Office  He has been an agent for 12 years and has been assigned in Denver, Phoenix and Columbus, Ohio.  Specifically, he was assigned to investigate counter-narcotics until 2001 when he was reassigned to the Counterterrorism Program.  SA Warner has been a member of the Joint Terrorism Task Force, a principle relief supervisor for the JTTFs in Phoenix and Columbus and most recently assigned as the primary source/informant recruiter for the FBI's Field Intelligence Group.  He also specializes in interview and interrogation instruction for the FBI.   SA Warner is a certified Special Weapons and Tactics (SWAT) Team operator.

 

November 19, 2008 - FBI WMD Update and Joint Terrorism Task Force

FBI Special Agent Rick Maier discusses Weapons of Mass Destruction, as well as the JTTF.  These presentations focus on how terrorism and WMD affects the community as a whole, as well as critical infrastructures, key industries, etc. SA Maier is the FBI's WMD Coordinator for the Cincinnati Division. This includes the cities of Dayton, Columbus and Cincinnati (and all the lower 48 counties of the State). Rick has worked Counterterrorism and WMD matters for nine years for the FBI (seven in Washington, DC and two here in Ohio).  His case load includes major case response and investigation on the 9/11 attack on the Pentagon and the Anthrax attack investigation. Prior to joining the FBI, he worked for ten years as a research scientist in the field of Infectious Disease and Immunology. 

The WMD/terrorism discussion focuses on the overall response to a WMD incident and how the FBI works with our local/State and Federal partners to resolve the incident and further the investigation. This brief also has a WMD awareness section and talks about the threat picture. The briefing has incident and case examples - not all protocols and procedures.  The JTTF brief provides a basis of how the Task Force works at the local level up to the National/International level. Also how events in that occur in Ohio can affect events globally.    Rick provides UNCLASS or FOUO information to our group on the FBI's role regarding terrorism and WMD response and investigation.
  

September 17, 2008 - BlackHat / DefCon  from Vegas 2008

JD Rogers is back to give his annual recap of what he has garnered from the 2008 BlackHat/DefCon Conferences in Las Vegas last week.  We will discuss the security trends for the up coming year.  In general, these topics range from the latest hacking techniques and tools, to the latest countermeasures in information security. Many of these topics will apply across the board, from personal home computing to enterprise information protection. Come learn what's going on in the hacking community before you have to witness it up close and personal. 

DNS exploits    Citrix Hacking    Kiosk Hacking   The Middler       Preboot password attacks
Social Network attacks  SSL VPN attacks          Phishing           Sniffing Cable Modems
New ToolsDef Con        Def Con Style               Badge Hacking             Full 802.11a Spectrum
Scalable Password Cracking      War Ballooning              ModScan          Nmap Update
Subway Hack

JD Rogers has been in the IT profession for 13 years, with 8 of those focused on IT security. He is a CISSP and has a Masters in Information Systems with a focus on security. JD is current the Director of Information Security at Great American Financial Resources, Inc. He is also a co-teacher of a Black Hat training course focused on securing Microsoft technologies. JD is an annual speaker at the Cincinnati and Dayton InfraGard chapters. 

 

July 16, 2008 - Business Contingency Planning

Please join the Dayton Infragard Members Alliance as it welcomes Shannon Culp, Director of IT Risk and Security for Cintas Corporation as she discusses Business Contingency Planning (BCP).  During the presentation, an overview will be given that includes how organizations should design and execute a BCP program.  This overview will include the need for risk analysis for organizations, which may include Business Impact Analysis.  Once an organization determines its risks, it should develop recovery strategies and plans to implement those strategies.  Finally, in order to maintain an effective BCP program, organizations must test and update their plans, along with conducting BCP training for their employees.  During the presentation, Shannon Culp will offer examples of BCP programs from her experience to offer ideas of what to do and not do when implementing and maintaining a BCP program.

Shannon Culp, Director of IT Risk and Security for Cintas Corporation will offer her viewpoints on how business contingency planners can successfully establish and maintain business contingency programs.  Shannon Culp has been instrumental in building a Risk and Security program for Cintas as well as guiding Cintas to PCI compliance.  Previously, she held the position of Manager, Enterprise Information Security- Risk Management at Sara Lee Corporation.  In this role, Shannon developed and managed Sara Lee‘s Information Security Program, and supervised a team of 19-23
partners responsible for all enterprise security administration and security analytical activities for all Sara Lee’s divisions. In addition, Shannon has led security and BCP programs for American Financial Group, Fidelity Investments and was a Manager for Ernst & Young LLP Security practice where she was the practice leader for BCP for the Ohio Valley (OH,KY and IN).

 

May 21, 2008 - Mitigating the Insider Threat & USAF in Cyberspace -- Organizing, Training and Equipping a Cyber Force

Dr. Robert Mills discussed how trusted insiders present one of the most significant risks to organizations. As they are trusted, insiders possess elevated privileges, have knowledge about technical and non-technical control measures, and can bypass security measures designed to prevent, detect, or react to unauthorized access.  Insiders may accidentally or maliciously act and the results may be productivity loss, legal fees, loss of customers, and lost intellectual property. The 2007 E-Crime survey conducted by CSO magazine, Secret Service, CERT, and Microsoft showed that the reported economic and operational damage caused by insiders was comparable to that of external attacks.

While insider threat mitigation is complex, these attacks are typically planned in advance, and that others (coworkers, colleagues, supervisors, or even people outside the organization) may have knowledge of the insiders' intentions and/or ongoing activities.  This provides a window of opportunity to mitigate or prevent damage.  Due to lean departments, managers can use an automated way to generate leads so that IT can focus 80% of their time on the 20% that appear more likely to be suspect. Dr. Mills explored this using management (risk management, policy, and procedures) techniques coupled with data mining technologies (interest modeling and social network analysis) to provide tools to assist management.

Dr. Bert Peterson spoke on the potential new Command at WPAFB - USAF in Cyberspace -- Organizing, Training and Equipping a Cyber Force

On December 7, 2005, Air Force leaders announced that the Air Force would "deliver sovereign options for the defense of the United States of America and its global interests - to fly and fight in the Air, Space, and Cyberspace." Cyberspace is being shaped, twisted, and forced into different molds in an attempt to define its utility as a war fighting domain, especially in terms of how it relates to the other domains of warfare (land, sea, and air).   This presentation will discuss the Air Force's approach to developing the people, technologies, processes, and doctrine that will enable us to fully exercise our capabilities in the cyberspace domain.  Specific topics will include the USAF's road map for developing cyber warriors and the establishment of a Cyber Command and realignment of functions to provide more cohesive oversight of cyber warfare and defensive functions.

ROBERT F. MILLS [SM '06] is an Assistant Professor of Electrical Engineering at the Air Force Institute of Technology (AFIT), Wright-Patterson Air Force Base, Ohio. He received his Ph.D. in electrical engineering from the University of Kansas in 1994, his MSEE from the Air Force Institute of Technology (AFIT) in 1987, and BSEE from Montana State University in 1983. His research interests are in communication systems, network management and security, information warfare, and systems engineering. Dr. Mills is a member of Eta Kappa Nu and Tau Beta Pi and is a senior member of IEEE.

Gilbert "Bert" Peterson is an Assistant Professor of Computer Engineering at the Air Force Institute of Technology. Dr. Peterson received a BS degree in Architecture, and an M.S. and Ph.D. in Computer Science at the University of Texas at Arlington. He teaches and conducts research in digital forensics and artificial intelligence. Dr.Peterson is a member of Eta Kappa Nu, and is currently the Vice-chair of IFIP WG 11.9: Digital Forensics.

March 12, 2008 - Department of Justice

Please join the Dayton Infragard Members Alliance as it welcomes Greg Lockhart, The United States Attorney for the Southern District of Ohio.  Greg will talk about some of the newer initiatives of the Department of Justice.  He will also discuss what the US Attorney's office does, including some interesting cases they have had recently.  If we have questions on topics like FISA and the current status of the Patriot Act, Greg will be happy to discuss those.  Greg should have some interesting stories like his take on the political side of the business such as the Gonzales situation and the firing of the US Attorneys.

Mr. Lockhart's background is varied, but here is a small synopsis.  United States Attorney, Southern District of Ohio, August 2001 to present. Assistant United States Attorney, March 1987 to August 2001.  Served as Organized Crime Drug Enforcement Task Force (OCDETF) prosecutor for 2 years, duties have included prosecution of all violations of federal law, i.e. contract fraud, murder, firearms, drugs, money laundering, mail and wire fraud, organized crime, gambling, bank robbery, grand jury investigations, wire intercepts. Additionally, the civil defense of all manner of lawsuits brought against the United States and its employees, i.e. medical and tort claims, discrimination, the training of agents and appellate practice.   Assistant County Prosecutor, Greene County.  Police Legal Advisor, Xenia and Fairborn, Ohio, police departments.  Special Prosecutor, Montgomery County.  In private practice, Greg was engaged in the private practice of law from November 1976 to March 1987.  General practice with trial experience at both federal and state levels and appellate experience at the state level.  Firms included: DeWine, Schenck and Rose; Schenck, Schmidt and Lockhart; and Reid and Lockhart.  He has taught at the University of Dayton College of Law, Wright State, Wilberforce, Central State, Wilmington College.  Past President of  Federal Bar Association (Dayton) and Founding Member & Master of the Bench (Emeritus), Carl D. Kessler, Inns of Court.  As well as various other associations and awards.   He served in our United States Air Force and is a Viet Nam Vet.

Our FBI coordinator, Special Agent Dave Barnes, will spend a few moments providing us with an FBI update, as well.

 

-------------

January 2008 – Meeting Canceled

-------------

November 14, 2007 - Overview of the US Attorney's Anti-terrorism Advisory Council

Please join the Dayton Infragard Members Alliance as it welcomes Robert Murchland, Intelligence Specialist, United States Attorney's Office Southern District of Ohio.  Mr. Murchland will provide an overview of the U.S. Attorney for the Southern District of Ohio's Anti-terrorism Advisory Council.  This addresses efforts to improve the security of the financial sector, enhance safety at public venues, and provide training to local law enforcement in the Southern District of Ohio.  This discussion will also highlight special anti-terrorism initiatives within the Southern District of Ohio.

Robert Murchland has thirty one years of federal and local government service experience.  He is currently serving as the Intelligence Specialist for the U.S. Attorney's Office, Southern District of Ohio.  His focus is on providing anti-terrorism and counterterrorism intelligence support to
the U.S. Attorney's Office, as well as local, state, and federal law enforcement agencies in the district. Prior to joining the U.S. Attorney for the Southern District of Ohio, he spent thirteen years as a Dayton Police Officer working in the Operations and Special Investigations Divisions
and seven years as a Special Agent and Counterintelligence Analyst with the Air Force Office of Special Investigations.  He is a former Naval Air Crewman with tours in the Airborne Electronic Warfare Community.

September 19, 2007 - 2007 Black Hat / DefCon

JD Rogers returns to fill us in on the latest from Black Hat / DefCon.  JD is an IT Security Principal with Duke Engery, formerly Cingery, in Cincinnati.  JD, a Cincinnati InfraGard Member, has been in the IT field for 15 years and has always had a focus on security, joining the IT Security team at Duke eight years ago.  JD speaks at the Cincinnati InfraGard Chapter meetings every year and conducts security training classes at Black Hat conferences. He has his CISSP (Certified Information Systems Security Professional) and is pursuing his masters in Information Systems with a focus on Security.  Even though the topics are IT related and technical in nature, the discussion is also informative for those in other disciplines to understand what the constant hurdles the information systems departments must deal with day-in-day-out. 

This talk will cover the latest topics from the security world of the August 2007 BlackHat and Defcon 15, held in Vegas every year.  These two conferences bring together some of the top minds of the security industry, as well as the hacker underworld.  The first is the Black Hat Briefings. This conference hosts some of the best and brightest minds in computer security. They come together to share new ideas, demonstrate new hacking tools, and network. The second conference is DefCon 15. This is the world?s largest annual underground hacking convention held each year. This is where hackers from all over the world come to share there stories, techniques and test their skills against one another.

Also, Crystal Evans from the Cincinnati FBI office will discuss the FBI's Counterintelligence Domain Program that works proactively with local business and academic institutions, as well as major defense contractors, to prevent the loss of classified and propeitory information.  As example, in the case of research grants granted to academic institutions, the FBI will assist institutions to ensure security requirements required for government sponsored research projects.

 

July 18^, 2007 - FBI's Cyber, Counterintelligence and Criminal Programs

Topics to include:
InfraGard Program Update
Computer Intrusion Section
Cyber Action Teams
Innocent Images National Initiative
Other Cyber Division priorities
Counterintelligence Domain Program
InfraGard RTP Program
The FBI Sentinel Program
Digital Forensics Update

Agents from the Defense Criminal Investigative Service and the FBI's Cincinnati Division will discuss Federal cyber investigations and the recent trends in computer  forensics. This presentation with focus on both counterintelligence and criminal cyber matters and discuss the priorities of the FBI's cyber division. Topics will include an InfraGard program update from recent statistics compiled by FBI Cyber Division, an overview of the FBI Cyber Division's Computer Intrusion Section, a look at the FBI's Cyber Action Teams, an overview of the FBI's nation-wide Innocent Images National Initiative, the cooperation between FBI Cyber, the Counterintelligence Domain Program and the InfraGard RTP Program, and an update on FBI's new Sentinel system. This presentation is designed to educate the public on the goals and objectives of the FBI
and DCIS in cyber matters as well as provide a look at how a cyber investigation is conducted.
 

May 17 and May 18, 2007 – All Ohio InfraGard Meeting in Columbus

Join the ISSA for the Thursday evening reception. Mr. Mike Rothman, analyst and author of The Pragmatic CSO, (www.securityincite.com and www.pragmaticcso.com ) will provide a special presentation on The Pragmatic CSO methodology at the ISSA/InfraGard meeting. Mike’s methodology is not about technology, it’s about being an effective security executive. If you are having trouble getting budget approval, interfacing with auditors, or just want to figure out what it’s going to take to be a premier CSO, attend the reception. Mike will also be available to sign copies of the Pragmatic CSO after the session.

Friday, May 18th – 9:00 am to 4:00 pm

Columbus Police Department Training Academy

Shawn Henry, Deputy Assistant Director Cyber Division, FBI HQ – topic: Emerging Public and Private Sector Cyber Threats and the Importance of the Information Sharing and Analysis Centers in Defeating Them.

 Rich Rollins, Assistant Homeland Security Director for Terrorism, State of Ohio – topic: The Ohio Fusion Center: What It Is, How It Works

Steve Bradley, VP of Professional Services, Wolcott Group – topic: Identity Management – Who’s On Your Systems? 

James Robertson, Assistant Special Agent in Charge, FBI – topic: The FBI in Iraq

 Lance Litchfield, National Director, Security Consulting – topic: IT Security at Casinos 

This All-Ohio InfraGard Summit is being held in cooperation and with support from the Ohio ISSA, ISACA and ASIS organizations.

March 28, 2007 - FBI's Evidence Response Team

Supervisory Special Agent Ken Wall will present an inside look at the FBI Evidence Response Team (ERT). The recovery of physical evidence during investigations of crime scenes and search warrant execution is one of the most important undertakings of contemporary law enforcement.  This has often been dramatized on television shows such as CSI.  Agent Wall will talk about how the FBI conducts crime scene investigations. He will demonstrate tools of the trade and will go into some of the major cases his team has been involved in, including Oklahoma City, 9/11 - The plane crash in Shankesville PA., World Trade Center, and the Egypt Air Plane crash off the Coast of Rhode Island.  Agent Wall will also discuss some cases with a more local flavor.

Today, with the expanded capabilities of forensic science, more attention must be directed in the field to the proper location, recovery and documentation of physical evidence.  Ultimately, this evidence will be examined by experts in FBI laboratories and used in the furtherance of justice.  Experience has revealed that the utilization of the team concept for field evidence recovery can be a great advantage in ensuring that evidence is recovered in an effective and efficient manner. ERTs are especially valuable when large and complex crime scenes are encountered.

 

Wednesday January 17, 2007 - OPSEC Challenges in Today’s Dangerous World

Whether in a company's research and development department, in a think tank, on a university campus, in a contractor's lab, or on the battlefield, the Operations Security challenges we all face are greater today than ever before. Technology has become more the problem than the solution in many cases and when planners, researchers, war fighters, program managers, and law enforcement officials don't recognize what their critical information is that needs to be protected, the stage is set for potential disaster.  Products and systems that we don't deam sensitive or necessarily important today, may someday be used by our enemies or competitors.  Come learn about the methodology and practice of good OPSEC, as well as how DoD is partnering with the FBI, academia, and the contracting community to increase our overall national security. We've got to stop being our own worst enemies, and OPSEC is a great way to start!

Rick Estberg has over 30 years experience in DoD. He began his career with a four-year stint in the Army, serving as a linguist in Berlin, Germany. From 1989-1992 he served as an intelligence advisor to the U.S. European Command, located in Stuttgart, Germany. He was named a Brookings Institution LEGIS Fellow in 1997 and served on the personal staff of Rep. Bobby Scott (D-VA), acting as a speech writer and staffer responsible for legislative topics to include defense, native Americans, NASA, the National Park Service, and veterans affairs. In the next six years prior to his arrival at the IOSS, Rick held positions on foreign relations and collection management staffs, as well as in several operational offices. He arrived at the Interagency
OPSEC Support Staff in November, 2003, and is presently the Chief of Staff.  In his 3 years at the IOSS he has addressed audiences totaling well over 23,000, covering topics ranging from the 5-step OPSEC process to identity theft to OPSEC in contracting to "the blogs of war." Additionally, over 1,250 students have attended his briefing skills classes.  Rick holds Bachelor of Arts degrees in German and Education from Ripon College and from the University of Maryland in History, as well as a Master of Arts degree from Boston University in the field of International Relations. He is the recent recipient of his Agency's 2nd highest recognition, the Meritorious Civilian Service Award.

November 15,  2006 - Ohio House Bill 104

Prof Rob Lech of the University of Dayton School of Law, Law and Technology Program, will speak on the recently enacted (Feb '06) Ohio House Bill 104.

Ohio House Bill 104 is a preventative measure to protect Ohio residents from identity theft. The talk will include a discussion of the requirements of this legislation which requires state and certain business entities to notify Ohio consumers in the event of a breach of security. The Ohio legislation will be compared it to similar legislation in other states, such as New York and California. Finally, the talk will identify gaps in the legilation that still need to be addressed.

Prof. Lech earned his BS in Management-Information Systems from the University of Michigan. He went on to pursue his legal education at the Detroit College of Law where he graduated in the top six percent of his class and earned ALR Book Awards in Civil Procedure and Bankruptcy. While completing his undergraduate and legal education, he worked full-time in the information technology industry and was responsible for a variety of projects ranging from developing entertainment software marketed by Atari, Inc. to overseeing development of an employee benefits management system for Comerica, Inc., a large Midwestern bank.

After graduating from law school, Professor Lech went on to work as an Intellectual Property Attorney. Prof. Lech has practiced both in-house and in private practice. Most notably, he was one of the three in-house counsel responsible for the Priceline patent and trademark portfolio. More recently, he was a senior associate at Calfee, Halter & Griswold LLP in Columbus, Ohio, where he drafted and prosecuted US and Foreign patent applications, conducted discovery and drafted dispositive motions in high-profile patent litigation cases, and counseled clients regarding appropriate overall IP strategy. Professor Lech joined the UDSL faculty in the fall of 2005 

September 20, 2006 - Review of the Blackhat/DEFCON meeting

J. D. Rodgers will discuss this years annual Blackhat/DEFCON meeting.  Each year JD attends the meeting and brings back to us insight into what we might expect to see from this group of people in the coming year.

May 17, 2006 - The Fourth Amendment in Cyberspace

A presentation by Prof. Susan W. Brenner. Title: This presentation examines how computer technology can make the application of traditional Fourth Amendment principles problematic. It explains that the Fourth Amendment was drafted to cover real-world searches, primarily law enforcement's kicking down the door of a house and searching through the rooms, closets, chests and other containers in the house. It assumes, therefore, physical space and tangible items. As the presentation explains, it can be difficult to extrapolate Fourth Amendment principles based on this assumption to virtual "spaces" and intangible evidence. The presentation examines, for example, the application of the Katz test to computer searches, a magistrate's ability to require computer search protocols, consent in computer searches, etc.
 
 Susan W. Brenner is NCR Distinguished Professor of Law and Technology at the University of Dayton School of Law, where she teaches Criminal Law, Criminal Procedure, a Cybercrimes survey course and a Cybercrimes Seminar. Professor Brenner has spoken at numerous conferences, including Interpol's Fourth International Conference on Cybercrimes in Lyon, Interpol's Fifth International Conference on Cybercrimes in Seoul, the American Bar Association's National Cybercrime Conference, the American Bar Association's 2003 & 2002 Annual Conferences, the 2003 Asia Pacific Fraud Convention in the Gold Coast, Australia and the International Society for Criminology's XIII World Congress in Rio de Janeiro, as well as other InfraGard functions.

Presentation Download

March 15, 2006 - Black Hat Conference / DefCon Update

JD Rogers is a IT Security Principal with Cinergy Corporation, Cincinnait.  JD has been in the IT field for 13 years and has been with Cinergy for 10 years. He has always had a focus on security, and joined the IT Security team at Cinergy 6 years ago. JD speaks at the Cincinnati InfraGard Chapter meetings every year, and conducts security training classes at Black Hat conferences. He is currently pursuing his master degree in Information Systems with a focus on Security.  As you can see from the list and who is at risk, this meeting is important information for all individuals, not just the IT professional. 

JD's talk will take look at new security trends coming from Black Hat / DefCon Las Vegas 2005.  Here are his topics:

· Google Hacking continues
· Today's Rootkit
· SSH HiJacking
· Super Phishing
· Forensics Evasion
· IR hacking on hotels TV's

We hope you can take time to join us for this very interesting and valuable meeting..

January 18, 2006 - Homeland Security in the Miami Valley 

General Discussion

The Dayton Infragard Members Alliance meeting in January will cover an important topic for all local citizens, Homeland Security in the Miami Valley.  After last year?s catastrophic hurricanes, people are more
interested in the government?s role in preparing for and responding to emergencies. 

This special presentation will be given by:
Captain Rennes Bowers, RMRS/MMRS/WMD Coordinator for the Dayton Fire
Department Jeff Cooper, Emergency Preparedness Coordinator for the Combined
Health District of Montgomery County
Lieutenant David Wright, Emergency Planning, Dayton Fire Department

Our presenters will discuss how local emergency responders prepare and plan for threats and hazards facing the Miami Valley. What assets are already in
place to protect the region?  How planners use technology to plan for and respond to an emergency event. The presentation will also cover the current
state of preparedness in the Miami Valley.  After the presentation, a Question and Answer session will be
held.  If you are interested in how our local agencies are preparing for events such as Tornados, the Avian Flu and Weapons of Mass Destruction, this is an important meeting to attend.

November 16, 2005 - Legal Issues  

General Discussion

Our topic for this meeting is a general discussion by Greg Lockhart from the US Attorney's Office Southern District of Ohio.  Greg will be discussing the implications of the Patriot Act, Identity theft and working with local officials in criminal issues.

Please join us for this timely and relevant discussion for anyone interested in protecting our digital infrastructure.  

September 21, 2005 - Social Engineering 

Our topic for this meeting is Social Engineering, which in today’s Identity Theft rampant world should be of interest to organizations and individuals alike. Social Engineering is the method of gaining sensitiveinformation from people through the use of the telephone and the Internet. One of the best known social engineers is Frank Abagnale, subject of the movie “Catch Me If You Can.” In today’s world, social engineering is being used to gather sensitive passwords from organizations and financial information from everyday citizens.

Please join our speaker, Zach McArtor for this timely and relevant discussion for anyone interested in protecting sensitive data. Zach is a member of the Ohio State University Incident Response Team. As such, he investigates attacks to the university network on a daily basis. Through his daily duties, Zach has seen hundreds of social engineering attacks to students and faculty alike. His discussion will define Social Engineering ,and how organizations and individuals can identify and defend against these attacks.

July 20, 2005  Spyware - Prevention and Protection 

The presentation details will follow shortly however a server with no firewall or virus protection has been provided an internet connection is being infected with a variety of various Spyware applications. 

The server and experiences will provide a focus point for the discussion.  This event is being designed for both technical and non technical members.